CVE-2010-0743

Source
https://nvd.nist.gov/vuln/detail/CVE-2010-0743
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2010-0743.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2010-0743
Published
2010-04-08T17:30:00Z
Modified
2025-04-11T00:51:21Z
Downstream
Summary
[none]
Details

Multiple format string vulnerabilities in isns.c in (1) Linux SCSI target framework (aka tgt or scsi-target-utils) 1.0.3, 0.9.5, and earlier and (2) iSCSI Enterprise Target (aka iscsitarget) 0.4.16 allow remote attackers to cause a denial of service (tgtd daemon crash) or possibly have unspecified other impact via vectors that involve the isnsattrquery and qryrsphandle functions, and are related to (a) client appearance and (b) client disappearance messages.

References

Affected packages

Debian:11 / tgt

Package

Name
tgt
Purl
pkg:deb/debian/tgt?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:1.0.3-2

Ecosystem specific

{
    "urgency": "medium"
}

Debian:12 / tgt

Package

Name
tgt
Purl
pkg:deb/debian/tgt?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:1.0.3-2

Ecosystem specific

{
    "urgency": "medium"
}

Debian:13 / tgt

Package

Name
tgt
Purl
pkg:deb/debian/tgt?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:1.0.3-2

Ecosystem specific

{
    "urgency": "medium"
}